httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ruediger Pluem <>
Subject CVE-2005-2970 fixed in httpd 2.0.55
Date Mon, 31 Oct 2005 23:03:35 GMT

I just noticed that it was missed to mention that CVE-2005-2970 has been fixed with httpd
2.0.55 (See the following
entry from 2.0.55 Changelog:

  *) worker MPM: Fix a memory leak which can occur after an aborted
     connection in some limited circumstances.  [Greg Ames]


The entry is missing in the Changelog (which cannot be changed any longer for 2.0.55,
btw: does it make sense to adjust this entry such that this hint will be included in
as well as on
As I see that the vulnerabilities files are basicly only adjusted by one person the question
for me is:
Should I add it or not?



View raw message